CONNLIMIT

Rio Martin. rio at martin.mu
Thu Apr 7 11:29:40 CEST 2005


Try using -j DROP instead of -j REJECT
And the last rule seemed to ACCEPT all of those rules you ve applied before.
Remove it.

Regards,
Rio Martin.
---------------------------------------------------------
Network & System Engineer
Network Operation Center
INSTITUT TEKNOLOGI NASIONAL 
Email: rio at martin.mu
Website: http://www.itenas.ac.id
---------------------------------------------------------

On Wednesday 06 April 2005 20:50, Luiz C. Spies wrote:
> Hi to all, i try many time limit my port 25 to 2 connection, but i have no
> achieve success yet!!!
>
> I tried this rulez!
> iptables -A INPUT -p tcp --syn --dport 25 -m connlimit --connlimit-above
> 2 --connlimit-mask 32 -j REJECT --reject-with tcp-reset
> iptables -A INPUT -p tcp --syn --dport 25 -m connlimit --connlimit-above
> 2 -j REJECT
> iptables -p tcp --syn --dport 25 -m connlimit --connlimit-above 2 -j REJECT
> iptables -p tcp --syn --dport 25 -m connlimit ! --connlimit-above 2 -j
> ACCEPT
>
> Anyone has idea!!!???
>
>
> Greeting's to all!
>
> PS: Sorry about my english!
>
>
> Luiz C. Spies



More information about the netfilter mailing list